Mini Robot Enters Blood Vessels

Researchers demonstrate proof of concept in a pig’s artery:

— https://spectrum.ieee.org/mini-robot-surgeon

— https://www.vidarholen.net/contents/wordcount/

Active Directory Cheatsheet with code examples

- internal audit
- port forwarding
- bypass EP
- enumeration
- and etc…

— https://hideandsec.sh/books/cheatsheets-82c/page/active-directory

Debugging D-Link: Emulating firmware and hacking hardware

— https://www.greynoise.io/blog/debugging-d-link-emulating-firmware-and-hacking-hardware

Shells In Plain Sight – Storing Payloads In The Cloud

inside in a image…

— https://www.trustedsec.com/blog/shells-in-plain-sight-storing-payloads-in-the-cloud/

Abusing Microsoft Outlook 365 to Capture NTLM

— https://www.hackingarticles.in/abusing-microsoft-outlook-365-to-capture-ntlm/

How to Handle OS Signals in Go

— https://www.developer.com/languages/os-signals-go/

Bypass Windows Defender

— https://youtu.be/zOcl3o5lYYo

Needle (CVE-2023-0179) exploit

https://github.com/H4K6/CVE-2023-0179-PoC

Local privilege escalation via PetitPotam (perfectly on Windows 21H2 10.0.20348.1547)

https://github.com/wh0amitz/PetitPotato

Cross-site noscripting (XSS) cheat sheet

-- https://portswigger.net/web-security/cross-site-noscripting/cheat-sheet#assignable-protocol-with-location

CVE-2023-23397_EXPLOIT_0DAY

Exploit for the CVE-2023-23397 Credit to domchell

— https://github.com/sqrtZeroKnowledge/CVE-2023-23397_EXPLOIT_0DAY

Good News and New Changes in Sys-Admin Open BLD ecosystem
 
lab.sys-adm.in - it's AD/Malicious-free Open BLD DNS secure service, today I happy present for you/us few good news:

New security concepts
🐕 Security - Open BLD ecosystem fundamentally changed preventing/attacking mitigation mechanisms, now Sys-Admin Open BLD infrastructure has centralized automated hacking IP mitigation system
☀️ Updates - With open Sys-Admin activities now we are have two new instruments which can change security protection prism which based on open source tools/instruments…
🐌 Speed - Extremely improved speed for collecting/merging/compressing and deploying block/allow lists from Internet

Results
🌵 Cactusd Server, which writen from scratch on GoLang - fully replace BLD-Server update service
🧘 ip2drop replaced fail2ban in Open BLD ecosystem
🥋 All servers has new firewall settings and improvements

Deprecations
♻️ BLD-Server will deprecated and excluded from Sys-Admin activities/supporting in future (thanks nodejs which was foundament for this service) ⚰

Welcome
👋 I'm looking for talent, experts, programmers and just good and positive people for code-review, feedback, suggestions and etc - Welcome 🤜🤛

Hands-On SOC Analyst Training

quizes, practices..:

— https://app.letsdefend.io/training

#learn

Veeam Backup & Replication CVE-2023-27532 Response

PoC

— https://www.huntress.com/blog/veeam-backup-replication-cve-2023-27532-response

Tools (from bottom to up):
— https://www.geeksforgeeks.org/brutex-open-source-tool-for-brute-force-automation/
— https://github.com/EmreOvunc/ARP-Poisoning-Tool
— https://charlesreid1.com/wiki/Kali/Layer_5_Attacks
— https://charlesreid1.com/wiki/Kali/Layer_4_Attacks
— https://charlesreid1.com/wiki/Kali/Layer_3_Attacks
— https://charlesreid1.com/wiki/Kali/Layer_2_Attacks
— https://charlesreid1.com/wiki/Kali/Layer_1_Attacks

/ Domain Password Audit Tool (DPAT)

https://github.com/clr2of8/DPAT

Chaos-Rootkit

Is a x64 kernel-mode rootkit that can hide processes or elevate their privileges, work on the latest Windows versions:

— https://github.com/ZeroMemoryEx/Chaos-Rootkit

MacStealer: New macOS-based Stealer Malware Identified

https://www.uptycs.com/blog/macstealer-command-and-control-c2-malware

Malware AV/VM evasion - part 14: encrypt/decrypt payload via A5/1. Bypass Kaspersky AV. Simple C++ example.

This post is the result of research on try to evasion AV engines via encrypting payload with another function: GSM A5/1 algorithm:

— https://cocomelonc.github.io/malware/2023/03/24/malware-av-evasion-14.html